Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Policy Precedence testing #26717

Open
nathanjsweet opened this issue Jul 7, 2023 · 1 comment
Open

Policy Precedence testing #26717

nathanjsweet opened this issue Jul 7, 2023 · 1 comment
Assignees
@nathanjsweet
Labels
kind/meta Meta-task for co-ordination. release-priority/best-effort The project for target version is not a hard requirement. sig/policy Impacts whether traffic is allowed or denied based on user-defined policies.

Comments

@nathanjsweet
Copy link
Member

nathanjsweet commented Jul 7, 2023
edited

  • Make sure that the permutation matrix for all different types of policies is complete.
  • Make sure that various identity tests are also tested for CIDR corollaries (i.e. identities which are technically not equal, but overlap because their CIDRs overlap).
  • Test complex CIDR policies (e.g. the "Allow-ception" test)
@nathanjsweet nathanjsweet mentioned this issue Jul 7, 2023
Closed
4 tasks
@julianwiedmann julianwiedmann added kind/meta Meta-task for co-ordination. sig/policy Impacts whether traffic is allowed or denied based on user-defined policies. labels Jul 11, 2023
@christarazi
Copy link
Member

Redirect, deny, auth are the categories of precedence.

@christarazi christarazi added the release-priority/best-effort The project for target version is not a hard requirement. label Jul 19, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@nathanjsweet nathanjsweet

Labels
kind/meta Meta-task for co-ordination. release-priority/best-effort The project for target version is not a hard requirement. sig/policy Impacts whether traffic is allowed or denied based on user-defined policies.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@nathanjsweet @christarazi @julianwiedmann